Vulnerabilities > CVE-2004-2598
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Quake II server before R1Q2, as used in multiple products, allows remote attackers to corrupt the server's client state data structure by exiting a session without a valid disconnect command, then reconnecting, which prevents a mod from being notified of changes in the client state. NOTE: the impact of this issue will vary depending on which mod is being used.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |
References
- http://archives.neohapsis.com/archives/bugtraq/2004-10/0299.html
- http://archives.neohapsis.com/archives/bugtraq/2004-10/0299.html
- http://secur1ty.net/advisories/001
- http://secur1ty.net/advisories/001
- http://securitytracker.com/id?1011979
- http://securitytracker.com/id?1011979
- http://web.archive.org/web/20041130092749/www.r1ch.net/stuff/r1q2/
- http://web.archive.org/web/20041130092749/www.r1ch.net/stuff/r1q2/
- http://www.securityfocus.com/bid/11551
- http://www.securityfocus.com/bid/11551